MANAGE YOUR MIGRATION - NQA
MANAGE YOURMIGRATIONOHSAS 18001 TOISO 45001 GAP GUIDEwww.nqa.com/iso45001
ISO 45001:2018 STANDARDNEW WORK ITEMPROPOSALAgreed June 2013.COMMITTEE DRAFTIssued July 2014.20132014FINAL DRAFT INTERNATIONAL STANDARD (FDIS)Published November 2017.DRAFTINTERNATIONALSTANDARD (DIS)Issued 7 January 2016.2015DRAFT INTERNATIONALSTANDARD 2 (DIS 2)Issued April 2017.20162ND COMMITTEE DRAFTIssued March 2015.2017Although thisstandard isreviewed clauseby clause pleaseconsider theinteraction ofthe differentmanagementsystem elementsand how they relateand influence botheach other to givean effective systemoverall.201820192020FDIS BALLOT OPENSNovember 2017.FINAL PUBLICATIONPublished March 2018.WORKING DRAFTIssued January 2014.TIPFDIS BALLOT CLOSES25 January 2018.MIGRATION PERIODENDSMarch 2021.This document provides an overview ofthe key changes between OHSAS BS18001:2007 and the 2018 version ofISO 45001 – there are new requirements.ISO 45001 TIMELINEMIGRATE FROM OHSAS 18001 Draft International Standard ISO/DIS 45001 released in January 2016ISO 45001 will replace OHSAS 18001 and currentusers of OHSAS 18001 will need to update theirsystems according to the requirements of thenew international occupational health and safetystandard within a three year migration period thatwill commence after the standard is published foruse. Final Draft International Standard (FDIS) released end of November 2017 ISO 45001:2018 Standard - published March2018You will need to change and adapt your OH&Smanagement system to meet the new requirementsand migration timelines.STRUCTURE OF ISO 450011.Scope2.Normative Reference3.Terms and Definitions4.Context of the tion9.Performance Evaluation10. Continual ImprovementWE ARE HERE TO HELPWe are committed to translating the languageof the new standard, to help users interpret newconcepts and manage system changes moreeasily.Keep updated with the changes atwww.nqa.com/iso45001Please get in touch if you have anyquestions – call 0800 522 2424.
GAP ANALYSIS AND GUIDANCEISO 45001 CLAUSESOHSAS 18001 CLAUSESGUIDANCE4. Context of the Organization4.1Understanding yourorganization and its’ contextEnhanced requirement!This new concept relates to the factors and conditionsaffecting organizational operation e.g. regulation,governance and stakeholders.What drives the culture and requirements of yourorganization?Be prepared to discuss with your assessor, how the contextof the organization influences the ability to achieve theintended outcomes of your safety management system4.2Understanding the needs andexpectations of interestedpartiesEnhanced requirement!Consider who the interested parties might be and whattheir relevant interests might be, e.g. workers, customers,shareholders, board members, competitors and regulators.Consider the risks and opportunities that are generated forthe context.Be prepared to discuss stakeholder interests with yourassessor.4.3Determining the scope of theOH&S management system1 Scope & 4.1When determining the scope, the organization shallconsider :a) The external and internal issues referred to in 4.1;b) Requirements referred to in 4.2;c) The work related activities performed.Therefore the Scope can only be defined when 4.1 - 4.2 andwork related activities have been considered.Direct control and influence should also be considered.The scope once defined, shall be available as documented4.4OH & S management systemand your processes4.1 General requirements No significant change to this element of the standard.5. Leadership and Worker Participation5.1Leadership and commitment4.4.1, 4.4.3, 4.4.6More emphasis has been placed on the accountabilityof leaders to ensure consultation and participation withworkers to protect, improve performance, and supportthe OH&S system and its integration into other businessprocesses.5.2OH&S policy4.2 OH&S policyEnhanced requirements from the 2007 version: moreattention to be paid to the communication and participationof workers, across the organization and commit to providesafe and healthy working conditions.Organizations must commit to fulfill legal and otherrequirements.The fundamental requirements of this clause remainunchanged, however the policy must be relevant,appropriate and retained as documented information.5.3Organizational roles,responsibilities,and authorities4.4.1 Resources,The fundamental requirements of this clause remainroles, responsibility,unchanged but information on roles, responsibilities andaccountability & authority authorities must be documented.Accountability is retained by top management and cannotbe delegated.5.4Participation and consultation4.4.2, 4.4.3, 4.5.1, 4.5.2,4.5.3This clause has been substantially strengthened to captureand promote worker participation, engagement andcommunications and requires documented information tosupport the roles and responsibilities. Workers at all levelsmust be aware of their responsibilities applicable to theirarea of control.It also promotes the participation of non-managerialroles within the OH&S system requirements, includingincident investigations, risk assessments, plus controland monitoring activities including internal auditing. Theorganization is required to provide necessary mechanismsincluding time, resources and information to supporteffective implementation of the management system.
GAP ANALYSIS AND GUIDANCE (CONTINUED)ISO 45001 CLAUSESOHSAS 18001 CLAUSESGUIDANCE6. Planning for the OH&S System6.1Actions to address risks andopportunities4.3.1, 4.3.2 & 4.3.3Risks and opportunities identified in section 4 becomeinputs to a comprehensive planning approach.6.2OH&S objectives and planningto achieve them4.3.3Objectives must support the policy requirements and havebeen considered in line with the strategic direction andcontext of the organization. There should be detail of whois responsible, agreed timings and measures in place toestablish progress and whether proposed achievementshave been met.Objectives and plans to achieve them will be documentedinformation.7. Support7.1Resources4.4The organization will determine and provide the resourcesneeded.7.2Competence4.4.2The fundamentals of the OHSAS requirements remain,but procedures are no longer mandated. Documentedinformation will be available to support competenceevaluation and development of workers. Actions will bereviewed for effectiveness.7.3Awareness4.4.2Workers will be made aware of policy requirements,hazards & risks relevant to them and their part in theOH&S performance, including results of relevant incidentinvestigations etc. Workers shall also be made aware oftheir ability to remove themselves from what they considerimminent danger.7.4Communication4.4.3The New clause strengthens the previous requirementsincluding, what, when and with whom to communicate.Communication requirements are also embedded withinSections 5, 6, 8, 9 , 10 and implied within section 4.7.5Documented information4.4.3.2Participation and consultation are now embodiedthroughout the new ISO OH&S standard.4.4.4 & 4.4.5, 4.5.4“Documented Information” is a new vocabulary termintroduced to broaden how an organization choosesto create, maintain, and retain the information requiredor determined necessary for the management system;Documented Information may be both internal and externalin origin.When required, organizations are free to determine if adocumented procedure within a process is necessary or ifanother form of documented information can accomplishthe intended outcome.Documented information will still require controlscomparable to the previous OHSAS requirements.8. Operation8.1.1Operational planning andcontrol4.4.6The word plan has been introduced to this element of thestandard and also the establishment of “criteria” based onthe assessments in Section 6.In practice, this means that hazards and risk controls mustbe planned in to the operational controls of the activity.Other requirements have also been expanded or addedsuch as adapting work to workers.8.1.2Eliminating hazards andreducing OH&S risksEnhanced requirement!The standard specifies the hierarchy of controls in order ofpreference with regard to risk management principles.8.1.3Management of changeEnhanced requirement!Captures the requirements and potential sources for theplanned changes of the operation e.g working conditions,equipment, workforce and changes to legal requirementsand known hazards and risks.
GAP ANALYSIS AND GUIDANCE (CONTINUED)ISO 45001 CLAUSESOHSAS 18001 CLAUSESGUIDANCE8. Operation Continued8.1.4ProcurementEnhanced requirement!Refers directly to the procurement of goods, services toconform with management system requirements.8.1.4.2 ContractorsEnhanced requirement!The establishment of controls and communicationrequirements with regard to contractor’s worker activities,the host company’s worker activities. Consideration shall begiven to competence and other requirements for contractorworkers in relation to OH&S criteria.8.1.4.3 OutsourcingEnhanced requirement!Specifically strengthens the previous standard requirementsin relation to outsourced processes.8.24.4.7The revised standard strengthens and expands on theprevious requirements and also includes communications.8.1.4.1 GeneralEmergency preparedness andresponse9. Performance Evaluation9.1Monitoring, measurement,analysis and performanceevaluation4.5, 4.5.1These requirements have been strengthened andexpanded.9.1.2Evaluation of compliance4.5.2Clause requirement expanded to include frequency andmethod of evaluation and maintaining knowledge andunderstanding of compliance status.9.2.Internal audit and programme4.5.5The procedural requirements have again been replacedby documented information and results of audit shall becommunicated with workers.9.3Management review4.6This builds on the previous standard with added emphasison improvement and communications based on risks,opportunities and system effectiveness.Reviews include legal and other requirements, interestedparties, organizational risk and opportunity. Trendingof performance data is to be evaluated for continuousimprovement and alignment to strategic direction.10. Improvement10.1General10.2Incident, nonconformity andcorrective action4.5.3, 4.5.3.1, 4.5.3.2The phrase preventative action has been dropped, as it isconsidered to be a fundamental requirement of the OH&Ssystem in its entirety.Direct action must be taken in a timely manner to control theincident or nonconformity and deal with the consequences.When direct corrective action has been completed,the organization can move on to consider whether anyfurther action is required to prevent a similar incident ornonconformity occurring in future.The principles of risk assessment and continualimprovement will apply. Root cause analysis is the key toprogressive improvement and requires the organizationto determine what caused or causes have been identifiedfor the incident or nonconformity, what can be actioned toaddress the cause, review any risk assessments or establisha new assessment – as required before implementing anaction.Then to consider whether the potential for a similar problemremains – possibly in another area of the operation. Theorganization is then required to implement any actionsidentified as needed, review their effectiveness and makechanges to the management system, if necessary.Documented information is required for this clause of thestandard.10.3Continual improvementOrganizations will now need to demonstrate that theyare using the outputs from their analysis and evaluationprocesses to identify areas of under-performance andopportunities for improvement.
WHERE TO STARTNQA ISO 45001 OH&S (Health & Safety)Migration E-Learning CourseOnline - In Your Own TimeNeed to get up to speed with the new 2018 standard?This e-learning course will give you an overview of the 2018changes from OHSAS 18001:2007 and the knowledge andskills to manage the migration effectively.Duration: 3-4 HoursNow 170NQA ISO 45001 OH&S (Health & Safety)Migration & Implementation CourseVarious Locations - NationwideNeed to get up to speed with the highly anticipated 2018health and safety standard? This overview of the expectedchanges from OHSAS 18001:2007 to ISO/FDIS 45001 willgive you the knowledge and skills to manage the migrationeffectively.Duration: 1 DayNow 399BOOK ONLINE: www.nqa.com/trainingTERMINOLOGYYou will find that some of the familiar terminology of OHSAS 18001 will feature within ISO 45001. The proposed commonterms are outlined below:Acceptable riskThe acceptable risk is one that has been reduced to a levelthat can be tolerated in accordance with an organization’sOH&S policy and its legal responsibilities.AccidentThis defines an unwanted case that results in a fatality,injury, disease or other loss.HarmfulThis term refers to a potential resource or situation thatcould lead to injuries, illness or damage of goods in theworkplace.HazardThis term denotes any situation, substance, activity, or eventthat has the potential to cause ill health or injury. Examplesinclude cramped working conditions, badly ventilatedareas, toxic chemicals, dangerous gases, repetitive work,intimidation and bullying, explosions and equipmentmalfunctions.IncidentAn incident identifies a work-related event that could havecaused injury, ill health or death.Hazard identificationThis process involves identifying that a hazard exists andthen creating a description of its characteristics.Occupational health & safety objectiveThese are the performance goals that an organizationestablishes and plans to achieve. These objectives must bemeasurable and consistent with the organization’s OH&Spolicy.Occupational health & safety performanceThese are measurable controls that show how effectively anorganization manages their OH&S risks and the results theyachieved, compared to its OH&S policy, objectives or anyother appropriate OH&S performance requirements.Occupational health & safety policyThis is a statement of the organization’s commitmentto the implementation of and on-going maintenanceof its OHSMS as well as the improvement of its overallOH&S performance. Management should use the policyto demonstrate their commitment, to guide and fuel theimplementation and maintenance of the OHSMS, to developOH&S goals and to inspire action.WorkplaceDescribes a physical location, under the organization’scontrol, where employees, contractors and others performthe organization’s work. To manage their OH&S riskseffectively, companies may extend their controls to includetraveling, working at home or working at a customer’slocation.Ill healthThis refers to an adverse physical or mental condition, whichis identifiable and can be the result of or aggravated by awork activity or work-related situation.Contact usNQA, Warwick House, Houghton Hall Park, Houghton Regis, Dunstable, LU5 5ZX, United Kingdom0800 522 2424 info@nqa.com www.nqa.com/iso45001NQA/GA/45001/March18
Draft International Standard ISO/DIS 45001 - released in January 2016 Final Draft International Standard (FDIS) - released end of November 2017 ISO 45001:2018 Standard - published March 2018 You will need to change and adapt your OH&S management system to meet the new requirements and migration timelines. STRUCTURE OF ISO 45001 1 .
NQA-1-2000 NQA-1-2004 NQA-1-2008 processes to detect and correct quality problems. processes to detect and correct quality problems. detect and correct quality problems. (b) The program shall provide for indo
10CFR830.122/DOE O 414.1B NQA-1-1989 V/S NQA-1- 2000 REQUIREMENTS MATRIX 1 DOE O 414.1B/CFR 830.122 NQA-1-1989 NQA-1-2000 . The capabilities of a candidate for certification shall be initially determined by a suitable evaluation of the candidate's education, experience, training, and either test results or
Addenda to ASME NQA-1-2008, NQA-1-2012, and NQA-1-2015 provide the most current guidance for QA. The NRC issued RG 1.28, Revision 4, in June 2010. The guide extended the scope of the NRC’s approval of NQA-1 to include Part II, which
NQA-1 NQA-1 NQA-1 QA 8/2009—9/2015 11/2007—9/2010 5/2005—12/2012 Performance Period Savannah River Remediation LLC (SRR) Design, procurement, fabrication and start-up support services for a THOR FBSR Process to treat 300K gallons of radioactive waste Savannah River Site Ta
NQA-1 SIDE-BY-SIDE ANALYSIS OF REQUIREMENT EQUIVALENCY NQA-1-1994-1 NQA-1-2008 Additional Information 3 (4) assuring that further processing, delivery, installation, or use is controlled until proper disposition of a nonconformance, deficiency, or unsatisfactory condition has occurred. 2.2 Delegation of Work 202 Delegation of Work
Data Migration Planning Analysis, Solution Design and Development Mock Migration Pilot Migration Released Data Migration Active Data and User Migration Inactive Data Migration Post Migration Activities Small Bang The details for each step include: Data Migration Planing - Develop the migration strategy and approach, and define the scope,
Migration overview In the context of Migration Manager, migration is the process of promoting . A migration group can be either internal or user-defined. Internal migration groups are included with the product and are linked to other logically related migration groups called dependencies. You cannot modify internal migration
A New Migration Testing Strategy Pre-Migration Testing The concept of pre-migration testing is not often covered during migration planning. The professionals involved in migration planning are not much aware of comprehensive pre-migration testing and the value it can add to a migration and particularly those migrations that are considered complex.
